$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa File: 5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa (raw, json) Hash identifier: ncK07i69TP/TONea58wU8uFFHJlNQqmfnoTprA67e2o= Subject key identifier: C9:1E:BE:5B:06:FE:46:1B:91:B6:E4:BA:50:2D:9B:7C:B6:AC:73:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24A17A9FE80AF3804DE446152E18D04CB516440A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa Signing time: Tue 24 Jun 2025 00:51:06 +0000 ROA not before: Tue 24 Jun 2025 00:51:06 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:a1:7a:9f:e8:0a:f3:80:4d:e4:46:15:2e:18:d0:4c:b5:16:44:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:51:06 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=3d9868d6bf4719db17cd626704fe2c41946a2a189c1a436d96170d6b6f3a97f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3e:f3:da:ef:d1:3b:e3:87:5c:dd:8d:88:86: 6e:1f:8e:e6:73:78:cb:b1:62:9d:e6:07:76:27:7e: bc:e0:69:55:84:2d:f5:03:aa:bd:b3:c9:25:49:01: 35:f8:c4:df:f3:1c:39:76:bf:ad:59:8e:2a:55:f6: 57:09:3a:1c:12:a6:4b:5a:f6:db:2c:9b:07:e9:f4: 07:80:31:3f:0d:24:f9:cd:e3:80:73:56:ec:2b:c2: e8:6e:b2:54:64:c8:00:9d:83:04:3e:ea:52:e5:ef: 9e:d1:ed:2a:36:23:15:a9:c0:46:9e:5a:c6:e6:6e: 49:e5:42:2e:d2:92:1f:7d:5c:31:52:bc:8c:3c:65: 3c:f5:38:2b:5d:f7:92:38:f8:31:38:63:86:b8:28: 1d:1c:33:20:07:fc:5e:7b:48:c6:42:38:77:45:48: ce:a9:a7:0b:a0:28:bf:d9:c0:b1:37:e0:93:b1:de: 78:72:7f:06:fc:b6:4a:f5:02:78:73:3c:5e:73:d2: 32:dd:21:f1:b3:a0:00:c0:69:8e:d9:8f:39:02:53: 9b:42:26:7a:ee:ce:65:c5:e1:33:f6:39:77:30:87: 2d:1a:7c:1a:45:7c:01:4e:46:e5:39:1d:cd:8f:ea: f4:7d:e8:39:b4:c2:92:3c:82:f3:03:2c:79:24:1b: 3e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1E:BE:5B:06:FE:46:1B:91:B6:E4:BA:50:2D:9B:7C:B6:AC:73:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bdb2025-7181-439f-8bd8-d1091c1f8d72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.249.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:4c:a9:52:80:2a:64:c7:94:dd:ff:f6:05:36:ec:33:0e:38: d8:9d:74:e1:3d:cb:10:cd:26:62:45:f2:88:53:21:8d:15:ac: 97:bb:0e:c5:66:45:38:cf:32:84:9f:69:49:fb:fd:a8:d2:f3: 5f:39:e6:ea:86:2a:97:86:6e:5f:47:a2:e0:75:5d:18:61:20: 62:af:e6:44:45:fc:0c:1d:15:23:3c:19:15:73:bc:c1:ba:f2: b5:90:ef:82:de:e9:d4:a6:2e:84:3e:86:ab:d2:dc:e0:bf:68: 86:d7:26:64:1d:b4:45:52:7b:e7:c9:97:0d:d8:e6:bd:32:93: 73:ac:1a:5e:75:33:f6:15:22:7c:a5:b6:48:f9:f2:25:4f:65: e7:65:ff:24:f9:30:96:66:86:a9:25:e0:40:5e:e2:50:73:86: 23:13:84:bd:5b:ff:35:54:e3:43:6f:e5:fb:c6:d0:07:7e:74: 45:29:f1:d8:96:7c:9a:25:73:25:6a:d4:98:6f:ba:88:bb:51: 40:98:ea:77:34:98:83:43:5f:cb:96:83:c2:ca:52:bc:02:4c: 99:c7:4e:81:d7:bf:a0:40:2a:87:fc:78:49:a4:00:7b:ef:8a: c3:b7:fc:06:5f:86:f2:01:2b:55:ed:a0:c2:80:86:f5:dc:45: 21:dc:8d:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJKF6n+gK84BN5EYVLhjQTLUWRAowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDA1MTA2WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDk4NjhkNmJmNDcxOWRiMTdjZDYyNjcwNGZlMmM0MTk0 NmEyYTE4OWMxYTQzNmQ5NjE3MGQ2YjZmM2E5N2Y4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNPvPa79E744dc3Y2Ihm4fjuZzeMuxYp3mB3YnfrzgaVWE LfUDqr2zySVJATX4xN/zHDl2v61ZjipV9lcJOhwSpkta9tssmwfp9AeAMT8NJPnN 44BzVuwrwuhuslRkyACdgwQ+6lLl757R7So2IxWpwEaeWsbmbknlQi7Skh99XDFS vIw8ZTz1OCtd95I4+DE4Y4a4KB0cMyAH/F57SMZCOHdFSM6ppwugKL/ZwLE34JOx 3nhyfwb8tkr1AnhzPF5z0jLdIfGzoADAaY7ZjzkCU5tCJnruzmXF4TP2OXcwhy0a fBpFfAFORuU5Hc2P6vR96Dm0wpI8gvMDLHkkGz7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyR6+Wwb+RhuRtuS6UC2bfLasc18wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViZGIyMDI1LTcxODEtNDM5Zi04YmQ4LWQxMDkxYzFmOGQ3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTfkwDQYJKoZIhvcNAQELBQADggEBAGxMqVKAKmTHlN3/9gU27DMOONid dOE9yxDNJmJF8ohTIY0VrJe7DsVmRTjPMoSfaUn7/ajS81855uqGKpeGbl9HouB1 XRhhIGKv5kRF/AwdFSM8GRVzvMG68rWQ74Le6dSmLoQ+hqvS3OC/aIbXJmQdtEVS e+fJlw3Y5r0yk3OsGl51M/YVInyltkj58iVPZedl/yT5MJZmhqkl4EBe4lBzhiMT hL1b/zVU40Nv5fvG0Ad+dEUp8diWfJolcyVq1Jhvuoi7UUCY6nc0mINDX8uWg8LK UrwCTJnHToHXv6BAKof8eEmkAHvvisO3/AZfhvIBK1XtoMKAhvXcRSHcjak= -----END CERTIFICATE-----Generated at Wed Jul 2 20:54:15 2025 by rpki-client